Thank you for your feedback.
Form temporarily unavailable. Please try again or contact to submit your comments.

Kingston Patch 6

Log in to subscribe to topics and get notified when content changes.

Kingston Patch 6

The Kingston Patch 6 release contains fixes to these problems.

Kingston Patch 6 was released on May 30, 2018.
Build date: 05-24-2018_1317
Build tag: glide-kingston-10-17-2017__patch6-05-16-2018
Important: For more information about how to upgrade an instance, see Upgrade to Kingston.

For more information about the release cycle, see the ServiceNow Release Cycle. For a downloadable, sortable version of Kingston fixed problems, see KB0623762.

Note: This version is approved for FedRAMP.

Security-related fixes

Kingston Patch 6 includes fixes for security-related problems that affected certain ServiceNow® applications and the Now Platform®. We recommend that customers upgrade to this release for the most secure and up-to-date features. For more details on security problems fixed in Kingston Patch 6, refer to KB0687472.

Notable fixes

The following problems and their fixes are ordered by potential impact to customers, starting with the most significant fixes.
Problem Short description Description Steps to reproduce

Forms and Fields



Multiline text fields do not automatically expand if ACLs prevent the current user from writing to the field Multiline read-only text fields do not automatically expand. This makes the field to appear in only 3 lines, and users have to scroll down/up to read the content.
  1. Log in as an administrator.
  2. Add the Description field on an Incident form.
  3. Open a closed incident record.
  4. Fill with a long text in the Description field.
  5. Impersonate its "Assigned to" user.
  6. Open that incident.

Only three lines are displayed in the description, and users have to scroll up/down to read that text.

Service Catalog: Service Portal Widgets



Mandatory label variables do not have asterisks and are not enforced

When a label variable for a catalog item is set to mandatory by either a catalog client script or a catalog UI policy, it is neither displayed as mandatory (denoted by an asterisk) nor enforced in Service Portal.

However, mandatory labels work in the backend catalog item view because they are denoted with an asterisk and are enforced upon the catalog item form submission.

For more information on the existing types of variables, see Types of variables.

Refer to the listed Known Error KB article for details.

Activity Stream



Activity stream logs for inbound emails show a blank 'From:' field on the email preview When an email is received from a registered user with an account in the sys_user table, the 'From:' field is empty. If the user is not registered, the email is visible in the 'From:' field.
  1. Send an email from an email address associated with a valid user.
  2. Verify that the inbound email has been received by the instance.

The 'From:' field in the activity log is left empty.

Activity Stream



Turning off live forms glide.ui16.live_ forms.enabled hides journal fields associated to the activity formatter If users turn off live forms and set glide.ui16.live_forms.enabled to false, the comments fields associated to a form's activity formatter are hidden.
  1. In UI16, navigate to Incident > Open.
  2. Confirm that journal fields and work notes are displayed above the activity formatter.
  3. Set glide.ui16.live_forms.enabled to false.
  4. Return to the incident form.

    The journal fields do not display.

The journal field is set to display: none.

Activity Stream



HTML fields in the activity stream show HTML tags If an HTML field is added on the form and the activity stream, when the field changes, its content shows on the activity stream including HTML tags.
  1. Navigate to the incident form:
  2. Use Configure > Form Layout to add an HTML field called Test HTML.
  3. Open the form again, and create an incident with the blank value on the new Test HTML field.
  4. Open the newly created record, navigate to the activity section, and click the Funnel or Filter icon.
  5. Scroll down and click the Configure available fields link.
  6. Add the Test HTML field in the slushbucket.
  7. Navigate back to the form again, and change the value in the Test HTML field to 'Hello World'.
  8. Save the record.

In the activity stream, 'Hello World' appears as '<p>Hello World</p>'.

Application Navigator & Banner Frame



The form style is stuck on the first chosen theme and does not change to the style of the currently selected theme

Upon the initial change of the system theme, the form page theme changes correctly.

However, when changing to a different system theme, the form page theme does not change and still loads the style theme of the first theme that was changed.

Refer to the listed Known Error KB article for details.

All other fixes

Problem Short description Description Steps to reproduce

Agent Intelligence


Classification solutions predicting the value for random strings with no words overlapping with top words of any of the classes

Application Navigator & Banner Frame


In the UI16 application navigator, the star icon is incorrectly aligned for users who do not have rights to edit applications and modules The icons are positioned correctly for administrators. However, for other users, who cannot see the pencil icon, the star icon is not right-aligned as it should be. There is a gap between the icon and the right border of the navigator. Also, the icons are not left-aligned as they should be in RTL languages like Hebrew.
  1. Log in as a user who does not have the admin role.
  2. In the all applications tab of the application navigator, point to any application or module.

Expected behavior: The star icon appears in the far right position of the navigator.

Actual behavior: The star icon appears closer to the center of the navigator.




Users with the survey_reader role are not able to view responses of the assessments Users with the survey_reader role are not able to view responses of assessments because the assessment_take_2 UI page requires the survey_admin role.
  1. Impersonate a user that has the survey_reader role but not the survey_admin role.
  2. Navigate to Survey Instances > Completed.

    All the survey instances that are in the complete state are shown.

  3. Open any record here.
  4. Click the View User's Response related link.

A new dialog opens and is blank rather than displaying the user's survey response.

Automated Test Framework



ATF: Clicking a UI action cannot click the client form link with an action name
  1. Create an ATF Test.
  2. Add an open existing record step, set the table to incident, and choose any incident from zBoot or create a new one and refer to that incident in the open state.
  3. Add a Click a UI Action step, and set its UI action to Repair SLAs (client = true, form link = true, has a defined Action name).
  4. Run the test.

Expected behavior: The modal pop-up appears asking to confirm starting the repair process.

Actual behavior: The client test runner opens the form to incident, then leaves the form via g_form.submit ('sla_repair').

Automated Test Framework


The record query timeout does not work when the test is scoped The record query timeout does not work when the test is scoped. The step fails with an error 'ERROR Test failed: Function sleep is not allowed in scope <scope>'.

Change Management


The change request state is 'New', but the field is left with a value of 'TRUE' and cannot be changed because it is hidden
  1. Create a normal change request and fill out all mandatory fields.
  2. Click Request Approval.
  3. Check the box for 'On hold' and save the change.
  4. Click the hamburger icon and then click Revert to new.

Changes go back to the 'New' state.

Clone Issues


The clone_admin role does not work as described The clone_admin role does not allow a user to submit a clone because the script include that is called during the SOAP authentication to the target requires the admin role to invoke the script.

Cloud Management Application


TLR resources/Resource blocks can be deleted even though blueprints are using those resources or active stacks
  1. Activate the Cloud Management plugin.
  2. Create a blueprint and order it.

    An active stack is present from that blueprint.

  3. Navigate to the resource block, and delete the TLR of that blueprint or any resource that blueprint is using.

TLR resources/Resource blocks can be deleted and users do not get any warning message while deleting resources.

Cloud Management Application


Published blueprints and resource blocks should be uneditable When blueprint/resource blocks are in the publish state, users should not be able to import and override the entities.

Cloud Management Application


Config Management based on the chosen provider and the appropriate ServerType field should be set
  1. Navigate to the Cloud Admin Portal.
  2. Click Config Management.
  3. Click New to create a config provider.

Config Management based on the chosen provider and the appropriate ServerType field should be set.

Cloud Management Application


The Azure billing download keeps the streaming connection open longer than needed, risking "Connection Reset" errors The Azure bill is processed in a way that keeps the connection open for a long time. Much of the parsing and initial data processing is done one data chunk at a time, and the next chunk is not streamed until the previous is handled.

Cloud Management Application


The blueprint creation generates a 'NullPointer' exception
  1. Add 'Logical Data Center' and 'Virtual Server' to the blueprint canvas.
  2. Connect 'Virtual Server' to 'Logical Data Center'.
  3. Connect 'Blueprint Container' to 'Logical Data Center'.
  4. Click Publish To Catalog.

A NullPointerException is thrown and nothing gets generated.

Cloud Management Application


The approval of requested items does not reload the page

Cloud Management Application


The informative message is missing if the newly provisioned VM is not reachable If the ICMP is blocked, the provisioning takes a long time to time out and report an error.

Cloud Management Application


The catalog property type 'Text Area' in the blueprint design is not displayed correctly The field that is selected as 'Text Area' is displayed as a selection box.

Cloud Management Application


The blueprint form behavior should be auto-selected
  1. Navigate to the blueprint module.
  2. Open the blueprint deployment model.
  3. Navigate to Catalog > Form > Form Parameters.
  4. Click any of the catalog attribute names.
  5. Click the search icon near the Form UI Group.
  6. Click New on the Search Form UI Group window.

On the New Form UI window, by default 'Form Behavior' is not selected.

Cloud Management Application


Mandatory parameters are not highlighted in image templates
  1. Navigate to Manage > Resource Profiles.
  2. Select OS Profile and open the profile.
  3. Open profile and template mapping.
  4. Click Image Template.

Expected behavior: Attributes should be made mandatory in image templates.

Actual behavior: None of the attributes are highlighted as mandatory.

Cloud Management Application


Lifecycle operations at the resource level should show start, stop, and deprovision separately

Cloud Management Application


A prominent button should be removed because it is supported The creation/update GUI lists a prominent button for the Openstack as a provider implying support even though it is not supported.

Cloud Management Application


The blueprint catalog item does not render in the Service Portal If the blueprint catalog item is tried to be opened in the Service Portal default Service Catalog UI, a client script error is thrown.

Cloud Management Application


A few form fields do not display properly and some data types are not supported in the form
  1. Activate the Cloud Management plugin.
  2. Create a blueprint and generate a catalog.
  3. Navigate to provision catalog and select a form.
  4. Choose any form parameter and in the UI data type attribute choose the hidden option.
  5. Update the catalog property and publish the form.
  6. Navigate to the order form and check for the hidden form parameter.

Even though the form parameter is hidden, it is shown in the order form. The hidden UI data type is not supported.

Cloud Management Application


Logs mismatch when trying to perform the lifecycle operation on two different stacks
  1. Provision a VM on AWS and Azure.
  2. Navigate to the User Portal.
  3. Perform the stop operation on two different stacks at the same time.

Cloud Management Application


The orchestration is not able to resume the order because the policy engine does not indicate its failure to the orchestrator If a pre/post policy attached to the lifecycle operation fails, the response from the policy does not come back and the orchestration does not resume the order.

Cloud Management Application


The timeout in the ECC queue causes CAPI to be stuck for a long time

Cloud Management Application


Field change rules are getting deleted after resetting with preserve mapping
  1. Activate the Cloud Management application.
  2. Create an AWS VM blueprint.
  3. Navigate to operation steps and enable the availability zone attribute.
  4. Generate a catalog item.
  5. Navigate to the form and reset with override mapping.
  6. In the location attribute, check the rules.
  7. Reset with preserve mapping.
  8. Check the rules for the location attribute.

Field change rules are deleted after resetting with preserve mapping.

Cloud Management Application


The Dependency view button is missing in stacks
  1. Activate the Cloud Management plugin.
  2. Create a cloud account and run discovery.
  3. Create a blueprint and publish to the catalog.
  4. Provision a resource.
  5. After the resource gets provisioned, go to stacks and click the stack.
  6. Check for the Dependency view button.
The Dependency view button is missing in stacks.

Cloud Management Application


End users seeing the wrong stack information
  1. Configure two users on a system.
  2. Place an order as the first user. When the order is completed, navigate to that stack on the User Portal.
  3. Place a new order on behalf of the second user from different browsers.

After the second user places the order, the first user starts seeing details of the second user's order on the stack screen.

Cloud Management Application


The execute script race condition issue for windows VMs
  1. Provision a windows VM using public images.
  2. Run post provisioning tasks using the user data option to do various post provisioning tasks.
  3. Once a VM is ready with the required environment, run post provisioning execute script (or scripts) with required parameters passed from the catalog UI to set up various aspects.

There is a race condition due to the availability of VM and the execution of script. As the "block until ready" is not supported, the execute script fails.

Cloud Management Application


After importing policies, JSON values show up On importing the policy of the same type and order which exist in the system, the UI displays JSON values and the policy is imported as well.
  1. Navigate to the policy module. Create a lease policy with the same execution order of the exported policy.
  2. Import the policy which was deleted earlier.

JSON values show up instead of error messages. After closing the import popup, an error message shows up saying 'Order of execution cannot be same as other rules.'

Cloud Management Application


On opening the provisioned stack from the overview page, users cannot perform the lifecycle operation
  1. Provision an ARM stack.
  2. Once the stack is provisioned, open the stack from the overview page.

The lifecycle operation dropdown is missing.

Cloud Management Application


The ModifyLease functionality does not work for the Cloud Management application

Cloud Management Application


Enabled form parameters are not showing up for lifecycle operations
  1. Activate the Cloud Management plugin.
  2. Create a VM blueprint and publish to the catalog.
  3. Provision the resource.
  4. Navigate to the blueprint, in the operation section enable the ServerID attribute for the deprovision operation.
  5. Make the attribute mandatory and visible in the form parameter catalog.
  6. Navigate to the provisioned stack and select the deprovision operation.

Enabled form parameters are not showing up for lifecycle operations.

Cloud Management Application


Business rules on sc_task impacting all catalog requests Cloud Management business rules created on the sc_task table are impacting all the catalogs along with the Cloud Management catalog.

Cloud Management Application


The alert is processed when NIC is deleted in the Azure console, but CI and ResourceBlock are not associated Resource ID, CI, and RecourceBlock are not seeded properly during the NIC deletion in AWS.

Cloud Management Application


AWS alerts for the compute security group, the internet gateway, and the route table are skipped with errors

Cloud Management Application


AWS load balancer alerts are processed inconsistently AWS load balancer alerts are processed and updated inconsistently in the sn_cmp_cloud_event table and not updated in the cmdb_ci_cloud_load_balancer table.

Cloud Management Application



Deprovision fails with the error ad_hoc:azure-network-1.0-DeleteNetworkInterface

Deprovisioning fails with following error:

'Failed to execute API - Failed with status code and message: undefined: Value for mandatory field is not specified.'

This fails due to the v1 business rule which deletes the VM to NIC relationship.

Refer to the listed Known Error KB article for details.

Cloud Management Application


JavaScript errors while requesting provisioning a virtual machine using the order guide The catalog item is not loaded and an error is thrown.

Cloud Management Application


When the PowerShell script execution fails on a MID Server side, the CAPI call still marks as successful

Cloud Management Application


The .ps1 extension is missing for the file inserted When Cloud API of type: script connector (PowerShell) is created, the script file that is inserted does not have the .ps1 extension.

Cloud Management Application


Cloud Management V2 billing jobs are stuck The cloud billing discovery is not able to handle a huge number of downloads. It runs for a few days and eventually times out.

Cloud Management Application


Load balancer pools and pool members are not being populated as part of the provisioning

Cloud Management Application


The stack ID is not available for resources or the stack level operation for use with resource pools
  1. Create a stack with multiple VMs.
  2. Try to add a storage to a VM.

The VM list is not available.

Cloud Management Application


Import/Export of blueprint/resource block not working as expected

Cloud Management Application


The execute config package is failing with an error The ExecuteConfigPackages operation fails, and duplicate records of Config Script attributes are shown in the operation step of virtual server resources.

Condition Builder


Using the 'at or before' operator in the filter condition in alert groups is producing an error
  1. Activate the Event Management plugin, and navigate to Event Management in the filter navigator.
  2. Click Alert groups.
  3. Create an alert group with the field operational status set to 'Operational'.
  4. Add a filter condition using the 'at or before' query (for example, created 'at or before' last week).
  5. Save the alert group.
  6. Under Event Management, click Dashboard.

    A dashboard should be shown with alert groups on the dashboard.

  7. Click the alert group created. You may need to click it multiple times.

Expected behavior: The alert console should pop up with the correct list of results.

Actual behavior: An error is shown 'The content of elements must consist of well-formed character data or markup.'

Configuration Management Database (CMDB)


The summary table does not show up until users select any one of the fields changed The summary table does not show up until the user selects the one that is already changed in the filter properties in order to highlight changes to fields.

Configuration Management Database (CMDB)


The filter icon gets disabled once users unselect all the properties When users select 'Select All' under 'Highlight changes to fields', all the properties show up as 'Selected properties' in the timeline. If users unselect the fields, the filter icon gets disabled. To enable it again, users have to manually unselect all the properties.

Configuration Management Database (CMDB)


The selected properties list shows up over the filter property popover When users select 'Select All' under 'Hightlight changes to fields' in the filter property popover, all the properties show up as selected in the timeline page. When the user clicks the filter icon again, the selected properties list shows up over the filter popover.

Configuration Management Database (CMDB)


Calendar icons are aligned to the bottom of the start date and the end date instead of next to them



Slow database query in the get_orphaned_apps function List operations on CMDB tables are slower on average than other types of list operations.



Slow 'ASYNC: Discovery - Sensors' scheduled job processing the 'Unix - ADM' sensor



An excessive memory usage alert is generated For details on the fix for this PRB, refer to Configure Shazzam probe parameters and payload size.



Weblog discovery fails to discovery web_application using patterns




Delegates not receiving notifications when the notification is triggered to a group When the notification is triggered to a single user, for example, when the user is an 'Affected' user, the user's delegate is getting notified. However, when the notification is triggered to a group (e.g. Assignment group), the delegates of the group members are not getting notified.
  1. Create a user with some delegates.
  2. Assign that user to a group.
  3. Create a notification and in the 'who will receive' add that group and a delegate in the list of recipients and save.
  4. On the notification, click Preview notification.

The delegates are not added on the preview.

Event Management


Fail to check if there is an open alert with the same message key before handling the closed alert when updating alerts from events Although there is an open alert that should have been updated, the closed alert is reopened or a new alert is created.

Event Management


Memory issues related to the 'Impact Calculator' job In the 'Impact Calculator' job, the same property is used both to limit a batch of alerts and the list of loaded CIs.

Financial Management


Portfolio budgets are not promoted to the budget console

Forms and Fields


Knowledge of 'wiki' type converts escape wiki text on edit/ save

Forms and Fields


Setting the payload_name of a wizard answer (sys_wizard_answer) causes the form to stop rendering and an error is thrown In Kingston, if a sys_wizard_answer record has a payload_name value, that answer and anything below it are not rendered. Removing the value causes choice lists to display an incorrect behavior.
  1. Navigate to Change > Create new.
  2. In the top right, click Edit interceptor.
  3. Under Answers, click New.
  4. Select Get a yes/no response from the user.
  5. Change the type to yes/no.
  6. Add some text to the name.
  7. Following steps 2-6, make a second yes/no so that there are two yes/no's on the interceptor.
  8. Reload Change > Create new from the application navigator.
  9. Select yes from the top interceptor, and then click no on the second one.

The top yes/no changes.

Forms and Fields



The real-time updated checkbox field value does not save properly When a same record is open for two separate users, and one user updates a checkbox field, the other user sees that as a real-time update. However, when the other user changes the same value and tries to save it, the value does not save as expected.

Human Resources Service Management


Fail to set the table width when generating the PDF When users generate the PDF and specify column widths for tables, the preview shows the correct column width. However, when users generate the PDF, the column widths are ignored.



Data is corrupted in the user table The update of managers is not prevented in the sys_user import.

Knowledge Management


The scrolling behavior for KB articles on iOS native apps and iOS Safari not working as expected

On iOS Safari, if users try to scroll by finger swiping on the main content/title of KB articles, the page does not scroll sideways.

On iOS native apps, if users try to scroll by finger swiping on the main content/title of KB articles, the page does not scroll. If users try to finger swipe on areas outside of the title or main content (edge/borders), the page is able to scroll as expected.

Knowledge Management


The email received has only the relative URL for the 'View Question' link, which is not clickable The out-of-box notification for "Social QA answer posted" generates a relative URL for the 'View Question' link in the email, but the link is not clickable and usable.

Knowledge Management


If there are more than 17 categories in a knowledge base, the Content Management System page does not display more than 17 categories

MID Server


SNCSSH: The SCP file stream generates an error: "Could not perform file put. Job exited with status ERROR: Unexpected data received while in state CLOSING"

MID Server


An error occurs if the target SSH server sends the 'close' message before sending both EOF and Exit Status messages Most targets send both EOF and Exit Status messages before sending the 'Close' message, an error occurs "Connection unexpectedly closed by SSH server expected:<FINISHED> but was:<ERROR>".



The orchestration transaction counter should skip the Cloud Management scope Transactions generated by the Cloud Management plugin are currently not excluded from orchestration transaction counts.

Performance Analytics



PA Indicator additional condition "is same" does not collect data correctly for date fields The additional condition of the indicator does not return the correct data when the breakdown source groups are disabled.

Refer to the listed Known Error KB article for details.

Performance Analytics


The detailed scorecard becomes slow when the selected breakdown contains many elements When opening the detailed scorecard based on the real-time score and reviewing the breakdown with many elements, a separate query is run against the database for each of the elements in the breakdown. For each of the queries, an insert is done to "pa_rw_aggregate", which results in unnecessary delays.

Performance Analytics



Performance Analytics does not allow the creation of functioning dashboard in any domains except global If users access a dashboard while they are in a different domain than global, and they attempt to edit the dashboard by placing an out-of-box existing widget on one of the existing tabs, the instance generates new pa_widgets and pa_tabs records in the domain. However, these widgets and tabs typically throw errors on the server because they fail to find underlying components.
  1. Activate the following plugins:
    • com.glide.domain.msp_extensions.installer
  2. Log out and log back in.
  3. Change your domain to ACME. Navigate to Performance Analytics > Dashboards.
  4. Change the Dashboard to Incident SLA Management (inactive).
  5. Click Add Widgets and add a widget.
    1. Set the dropdown of available widgets to Performance Analytics.
    2. Select the Time Series > ootb - incident open - line.
    3. Click the Add button.

The widget is added to the top of the Incident SLA Overview tab. Instead of displaying the preview content, it displays an error message.



The sys_storage_alias record is not deleted when dropping a column through the update set The sys_storage_alias record is not deleted when dropping a column through the update set, resulting in an orphan record in sys_storage_alias.



The 'Collect Table Per Hierarchy Stats' can lead to excessive choice cache flushes



TPP migration on the upgrade can leave null sys_class_path values in partition tables The upgrade migrates CMDB to TPP and creates partition tables such as cmdb$par1. The sys_class_path column in these tables can be left null, causing problems in various CMDB list views.




Documentation overrides do not persist

In sys_documentation, users can override a parent tables' values for child tables. For example, users can set a different label for cmdb_ci_hardware.install_status than they have for cmdb.install_status.

However, if users change any documentation values for any of the parent copies of the field, for example, by changing the label for cmdb.install_status, it overwrites any customizations users have made in the child tables. This problem also happens to customized documentation values during an upgrade.

  1. Navigate to sys_documentation for cmdb_ci_hardware.install_status.
  2. Change the label, for example, to Hardware Status.
  3. Navigate to the form for a hardware record and ensure that install_status is a displayed field.

    Verify that the field label displays Hardware Status.

  4. Navigate back to sys_documentation for cmdb.install_status and change the label to Install Status.
  5. Navigate back to the form for a hardware record.

Verify that the Hardware Status label is lost, and is Install Status like all other CMDB classes.

Project Management


The copy project functionality on the project table does not work When trying to copy a project, an error 'Record not found' is displayed.



The dashboard overview page is performance when dashboards are shared a lot The more dashboards are shared, the slower the performance of the "All" and "Shared with Me" tabs on the dashboard overview page. The performance degradation is proportional to the number of dashboards and the number of times they have been shared.




The single score report shows an error when the result number is 0 An error occurs when running existing reports 'ERROR: Error processing request: null'.
  1. Create a report on the Incident table. The report type is Single Score.
  2. Add the Filter as Keywords==> are==> ab cd. Make sure that there is a space in between 'ab cd' or give any keyword so that it retrieves 0 records.
  3. Run the report.

An error occurs 'Error processing request: null.'



'Click to Print' for published reports displays only one page Users cannot successfully print any published reports. When using the 'Click to Print' button on a published report, the print screen only shows the first page and the scrollbar at the right.




Emails are not sent from a scheduled report when the report has errors
  1. Create a large report that has more cells than the sys_properties value of the glide.pdf.max_row property.
  2. Schedule that report to be sent periodically.
  3. Execute that scheduled report.
  4. Check the event logs.

    A scheduler.job.error event is shown with the message ' TooManyCellsException: Pivot table too big for export. Filter your data and try again.'

The email is not sent as expected.

Security Access Control Lists


The whitelist for IP addresses is not updated and backported to the previous releases

Service Analytics


Files are missing when the plugin is not enabled

Service Catalog: Service Portal Widgets


Unable to submit the order for a catalog item whose mandatory values are marked as no- mandatory using an onLoad UI policy Clicking the OrderNow button to place the order throws a 404 bad request error.

Service Catalog: Service Portal Widgets


The 'Write roles' field on a variable does not work consistently

When using the order guide outside of the Service Portal, setting the "Write roles" field on a variable record to "nobody" results in cascaded variable values remaining editable.

When using the order guide in the Service Portal, the cascaded variables are read-only in the individual item options as well as in the requested item and catalog task records.

Service Catalog: Service Portal Widgets


The onLoad catalog client script is triggered in the request item form view in Service Portal
This issue can manifest in four different ways:
  • onLoad catalog client script configured to run only on the catalog item view is triggered on the requested item form view in Service Portal.
  • onLoad catalog client script configured to run only on the requested item view is triggered on the catalog item form view in Service Portal.
  • onLoad catalog client script configured to run only on the catalog item view is missing on the catalog item form view in Service Portal.
  • onLoad catalog client script configured to run only on the requested item view is missing on the requested item form view in Service Portal.

This issue was reproducible with a catalog item that uses a variable of type Multiple Choice, Check Box, Single Line Text, and Numeric Scale but might not be limited to only these variable types.

Service Catalog


The reference qualifier on the look up select box does not work on the variable editor upon loading the form

Service Catalog



Search results miss the breadcrumbs displayed underneath the "preview" option The breadcrumbs are broken for search results displayed in the format of catalog items.

Refer to the listed Known Error KB article for details.

Service Catalog


Users receive "g_sc_form is not defined" in the browser console with onSubmit catalog client scripts When a catalog item has an onSubmit catalog client script, and "Applies on Requested Items" or "Applies on Catalog Tasks" is checked, users receive an error when opening the browser console "g_sc_form is not defined."

Service Level Agreement (SLA)


HistoryWalker variables values might be incorrect when walking through the history

Service Mapping


Users experience slowness and receive an HTTP 429 error The default semaphore is exhausted, leaving the instance unresponsive for several minutes.

Service Mapping


The debug mode for patterns does not work when an entry point is specified for an AWS load balancer

Service Mapping


The discovery of entities in the AWS cloud fails if the discovered entity is not the cloud load balancer Service Mapping discovery of entities in the AWS cloud, using the route 53 translation, fails if the discovered entity is not the cloud load balancer.

Service Mapping


Incorrect service account is retrieved for the cloud discovery

Service Mapping


Users get many "CI Changed" notifications because of changes to the hit_count field in the cmdb_ci_lb_service table Each time the field changes, users get the "CI Changed" notification that causes to model recomputation and lead to performance issues.

Service Mapping


Tracked files: $ does not support files with JSON content

Software Asset Management


The dashboard is empty when theglide.cms.enable. responsive_grid_layout property is set false

Software Asset Management


The 'HTTP 429 too many requests' issue occurs when the download for content is initiated

Software Asset Management


Platform reports on the dashboard show no values Platform reports on the dashboard show no values because of the hardcoded company system ID for the publisher filters.

System Applications


The input stream for unzipping each file entry in a zip is not released properly
  1. Activate the Managed Document plugin.
  2. Try to install the application into the instance.

The progress activity stops at 2% and a system error is thrown.

UI Components



Jakarta upgrade does not update the z_last_include.js version, causing reference-related issues After upgrading from Helsinki, the file z_last_include.js does not have its version updated, even though the file itself contains updates. This prevents the browser from re-caching the file, which can cause issues such as failing auto-complete references and bad results for reference qualifiers.
  1. Open the instance so when the homepage loads, the z_last_include.js file is loaded into your browser.
  2. Upgrade the instance to Jakarta.
  3. Open the page again.

    The z_last_include.js file is not updated.

  4. Open an incognito browser and log in to the instance.

The updated file loads.

Update Sets


The progress worker cannot be found and the update set preview does not finish The progress worker created with GlideUpdateSetWorker completes with an error "Progress worker state is not set to complete after worker is finished."

Vulnerability Response


Unable to "Defer" a vulnerability group if the date format is set as dd-MM-yyyy or MM/dd/yyyy

Vulnerability Response


Relationships/related lists previously created through the Vulnerability Response plugin no longer exist

With the Kingston upgrade, on the Vulnerable Item table sn_vul_vulnerable_item, the task SLAs related list is removed.

To reduce upgrade time, if you have Qualys or a third-party integration installed, delete all attachments on your integration data sources. You can find them by navigating to System Import Sets > Administration > Data Sources and searching by integration. See Manage attachments for more information.

For other details on the fix for this PRB, refer to Vulnerability Response release notes.

Vulnerability Response


Open vulnerable items with the fixed substate
  1. Create a manual vulnerability group.
  2. Create a vulnerable item.
  3. Assign the vulnerable item to the vulnerability group.
  4. Change the vulnerability group state in order: Start Investigation > Awaiting Implementation > Resolve (pick substate as Fixed) > Closed.

The associated vulnerable item's state changes to Open with a substate Fixed.

Other Kingston Patch 6 information

Configure Shazzam probe parameters and payload size
If the list of IP ranges being scanned is very large, you can configure the Shazzam payload for JSON encoding to reduce its size.
Setup Vulnerability Response
New information has been added to manage vulnerabilities within the application: Remediation target rules (available beginning with Kingston patch 6)
Create vulnerability group rules
  • The table Vulnerability Group Rule has been added.
  • Vulnerability group rules examples

    Kingston patch 6 examples of vulnerability group rules using vulnerability and risk, or impact, or configuration item (CI).

Create or edit remediation target rules
Beginning with Kingston patch 6, vulnerability managers can set up a remediation target rule at the vulnerable item level to drive the remediation of high-risk vulnerabilities in a timely manner. When the remediation date for a vulnerable item nears, a notification is sent to the users or groups specified in the rule.
Create a vulnerability group
An example has been given to show the Associated Vulnerability Group related list on a vulnerable item.
Upgrade tasks and notable changes by application or feature

To reduce upgrade time, if you have Qualys or a third-party integration installed, delete all attachments on your integration data sources. You can find them by navigating to System Import Sets > Administration > Data Sources and searching by integration. See Manage attachments for more information.

Vulnerability Response release notes
  • For key information on upgrading to Kingston, see the Upgrade impact of reparenting change in the Kingston release [KB0680550] article in the HI Knowledge Base. For an FAQ on the impact of changes to existing instances see the Vulnerability Response: FAQ for Kingston Upgrade [KB0680543] article in the HI Knowledge Base.
  • When upgrading from a version prior to Kingston, the Vulnerable Items by Remediation Target Status report does not appear in the Vulnerability Response Overview and must be added manually.
  • Create vulnerable items

    Beginning with Kingston patch 6, business services impacted by this vulnerable item. Shown when this information is available in the cmdb record. This information can be entered manually or using the ServiceNow® Service Mapping application. See Service Mapping for more information.

  • Vulnerability groups and group rules
    • You can automate group assignment. See Create vulnerability group rules for details. Also, An example of Associated Vulnerable Group related list on a vulnerable item was uploaded in Create a vulnerability group.

    • Beginning with Kingston patch 6, as part of the Vulnerability group rule, you can choose to define the assignment of these vulnerability groups.
  • Vulnerability Response remediation

    Beginning with Kingston patch 6, vulnerability group rules can automate vulnerability group assignments. Due to the large volume in data imports, care should be taken with automated vulnerability group assignment. See Create vulnerability group rules for more information.

    • Remediation target rules

      Beginning with Kingston patch 6, remediation target rules define the expected timeframe for remediating a vulnerable item, much like SLAs provide a timeframe for remediating the vulnerability itself. For example, if an asset contains PCI data (credit card data) then the vulnerability on that item needs to be fixed within 30 days according to PCI DSS. See Create or edit remediation target rules for details.

    • View the remediation target status of a vulnerable item

      Beginning with Kingston patch 6, when a vulnerable item has nearly reached (or passed) its remediation target date, as defined by a remediation target rule, the vulnerable item record is updated with a status. This information can help the analyst proactively monitor upcoming remediation activities.

    • Create or edit remediation target notifications

      Beginning with Kingston patch 6, you can edit the remediation target notification or add new ones. You can specify when to send the notification, who receives the notification, and what content is in the notification.

  • Using Vulnerability overview reports

    'Vulnerable Items by Remediation Target Status' displays the number of Vulnerable Items that are Approaching Target, In-flight, and Past Target.

  • Tables installed with Vulnerability Response
    • Related Business Services [sn_vul_m2m_ci_services]: links CIs to Business Services
    • Assignment Rule[sn_vul_vgr_assignment_rule]: contains assignment rules
    • Remediation Target Rule [sn_vul_ttr_rule]: contains remediation target rules
    • Vulnerability Remediation Status [sn_vul_m2m_ttr_status]: maintains remediation target status of the vulnerable item associated with the remediation target rule
  • Vulnerable Item [sn_vul_vulnerable_item] had two new changes:
    • added a flag for impacted services
    • added new columns: ttr_applied_rule, ttr_status, ttr_target_date
  • KB0683326 has been added to provide more information on NVD data feeds.

Fixes included with Kingston Patch 6

Unless any exceptions are noted, you can safely upgrade to this release version from any of the versions listed below. These prior versions contain PRB fixes that are also included with this release. Be sure to upgrade to the latest listed patch that includes all of the PRB fixes you are interested in.